Adobe Acrobat Reader Multiple Vulnerabilities - 20240305002

Overview

Adobe Acrobat Reader contains multiple vulnerabilities that could lead to remote code execution if exploited correctly.

What is vulnerable?

Affected Adobe products:

• Acrobat Reader versions 20.005.30539, 23.008.20470 and earlier

CVE	Summary	Severity	CVSS
CVE-2024-20749	Adobe Acrobat Reader Font CharStrings CharStringsOffset out-of-bounds read vulnerability	Medium	5.5
CVE-2024-20735	Adobe Acrobat Reader Font CPAL numColorRecords out-of-bounds read vulnerability	Medium	5.5
CVE-2024-20747	Adobe Acrobat Reader Font CharStrings INDEX out-of-bounds read vulnerability	Medium	5.5
CVE-2024-20748	Adobe Acrobat Reader Font avar SegmentMaps out-of-bounds read vulnerability	Medium	5.5
CVE-2024-20731	Adobe Acrobat Reader FileAttachment PDAnnot destroy use-after-free vulnerability	High	7.8
CVE-2024-20729	Adobe Acrobat Reader Annot3D object zoom event use-after-free vulnerability	High	7.8
CVE-2024-20730	Adobe Acrobat Reader Font CPAL integer overflow vulnerability	High	7.8

For more details about the vulnerablilities, please refer to the Recommendation section below.

What has been observed?

There is no evidence of exploitation affecting Western Australian Government networks at the time of publishing.

Recommendation

The WA SOC recommends administrators apply the solutions as per vendor instructions (refer Patch Management):

• Adobe Security Bulletin
• Adobe Acrobat Reader Font CharStrings CharStringsOffset out-of-bounds read vulnerability
• Adobe Acrobat Reader Font avar SegmentMaps out-of-bounds read vulnerability
• Adobe Acrobat Reader FileAttachment PDAnnot destroy use-after-free vulnerability
• Adobe Acrobat Reader Annot3D object zoom event use-after-free vulnerability
• Adobe Acrobat Reader Font CPAL integer overflow vulnerability
• Adobe Acrobat Reader Font CharStrings INDEX out-of-bounds read vulnerability
• Adobe Acrobat Reader Font CPAL numColorRecords out-of-bounds read vulnerability